$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/688B6F18355811F0AF79910EC4F9AE02.roa File: 688B6F18355811F0AF79910EC4F9AE02.roa (raw, json) Hash identifier: TCN1AZgzVPw/0NzN3SuEMukcZY6yAiASu/ppodIE8PQ= Subject key identifier: 95:0B:74:FF:84:80:94:C8:BA:C9:6F:5C:65:86:E7:5E:BA:37:3A:F8 Certificate issuer: /CN=A91FA9BC/serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Certificate serial: 01DA Authority key identifier: 4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/688B6F18355811F0AF79910EC4F9AE02.roa Signing time: Tue 20 May 2025 08:57:08 +0000 ROA not before: Tue 20 May 2025 08:57:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141780 IP address blocks: 2001:df6:3480::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA9BC, serialNumber=4ABBD7301CFF7FB4ACB6A04A14F0A36CCE85611C Validity Not Before: May 20 08:57:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=682c43e3-a728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cd:d1:99:54:8c:99:69:c2:ef:f3:bc:a3:6e: 98:4c:af:33:f5:7b:62:72:ac:b1:be:05:66:d6:12: 6c:82:08:9e:c6:f1:7f:bb:41:3d:8c:e8:d3:fd:2a: 92:de:8e:91:42:d2:cf:15:17:e3:39:f2:80:af:29: ec:cd:4a:39:00:ad:52:9f:12:e2:4d:1b:a0:40:5d: 2e:84:8e:86:1c:6e:27:97:19:ad:83:14:64:4b:f4: 5a:1d:cc:10:b9:61:52:21:42:a4:f5:9e:1b:dd:9d: c9:53:b5:7f:07:c7:59:42:40:61:1b:2c:02:26:72: f6:3e:9b:ef:2d:20:f1:17:f8:d6:37:55:db:ba:a0: 83:1a:27:4d:82:c4:90:4c:33:53:f2:2d:5e:68:81: 31:c0:6e:12:f1:f5:5c:7b:f3:7d:ec:da:26:f3:5c: 2c:10:b7:fd:10:4c:ca:db:53:a8:ac:d9:c4:69:96: 85:e8:4d:ee:cb:1f:f4:63:75:04:7a:2f:a2:49:d6: 60:f0:ea:af:5e:78:80:35:90:ca:ea:83:27:7f:fb: 1b:e7:8d:89:a4:46:c0:50:ae:38:55:09:1e:10:d2: 4a:98:54:74:55:02:ee:52:ef:2a:92:37:36:72:c2: 12:77:35:d2:6e:ce:60:86:3f:6c:b8:84:6b:10:23: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0B:74:FF:84:80:94:C8:BA:C9:6F:5C:65:86:E7:5E:BA:37:3A:F8 X509v3 Authority Key Identifier: keyid:4A:BB:D7:30:1C:FF:7F:B4:AC:B6:A0:4A:14:F0:A3:6C:CE:85:61:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/SrvXMBz_f7SstqBKFPCjbM6FYRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrvXMBz_f7SstqBKFPCjbM6FYRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA9BC/BE2CEFF0B3AA11EDAF31623FC4F9AE02/688B6F18355811F0AF79910EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3480::/47 Signature Algorithm: sha256WithRSAEncryption 51:91:1f:ad:ea:c5:98:43:14:93:fb:c7:17:ce:a9:18:c7:07: 24:29:64:3d:10:59:4a:72:ff:ec:a9:d4:60:69:d3:13:55:35: 73:63:c4:27:d8:1e:48:97:67:33:93:86:85:81:6f:02:e2:56: 92:81:92:dc:60:3c:79:c3:c0:e0:51:77:d8:2e:b4:cd:5d:9e: cb:74:a3:08:f3:4e:93:0f:ec:50:6f:5d:f6:8c:1b:6f:37:43: ab:90:8f:bf:bf:f5:6a:f5:c9:47:e8:8a:c9:ce:47:a6:e3:b7: 8d:15:c8:ec:48:8a:ee:c9:b7:1b:0f:b8:3d:4f:43:61:8b:d0: f7:16:a5:5d:ed:26:37:64:f1:34:d5:44:f2:cd:48:da:b6:67: f1:56:59:b2:40:dd:3a:c9:89:5f:ac:6e:04:d2:ca:98:7b:d1: f1:05:46:c6:9b:e1:e1:93:4b:af:5d:09:97:b4:cd:66:39:90: 9e:a9:0f:b8:6f:39:81:fb:43:58:ef:97:a7:e5:c9:a0:b4:6d: 3a:b8:74:19:eb:5e:7e:1d:0f:d3:1a:2c:a7:8e:43:61:af:84: 7c:c8:38:3a:ad:d2:4b:a8:d6:a8:9c:a0:9e:ef:14:03:72:61: b5:b2:85:2d:59:30:e4:09:f1:01:52:ca:e9:7f:a9:5c:3b:6b: 7b:12:98:5c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE5QkMxMTAvBgNVBAUTKDRBQkJENzMwMUNGRjdGQjRBQ0I2QTA0QTE0RjBBMzZD Q0U4NTYxMUMwHhcNMjUwNTIwMDg1NzA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjNDNlMy1hNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmM3RmVSMmWnC7/O8o26YTK8z9XticqyxvgVm1hJsggiexvF/u0E9jOjT/SqS 3o6RQtLPFRfjOfKArynszUo5AK1SnxLiTRugQF0uhI6GHG4nlxmtgxRkS/RaHcwQ uWFSIUKk9Z4b3Z3JU7V/B8dZQkBhGywCJnL2PpvvLSDxF/jWN1XbuqCDGidNgsSQ TDNT8i1eaIExwG4S8fVce/N97Nom81wsELf9EEzK21OorNnEaZaF6E3uyx/0Y3UE ei+iSdZg8OqvXniANZDK6oMnf/sb542JpEbAUK44VQkeENJKmFR0VQLuUu8qkjc2 csISdzXSbs5ghj9suIRrECOhywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJULdP+E gJTIuslvXGWG5166Nzr4MB8GA1UdIwQYMBaAFEq71zAc/3+0rLagShTwo2zOhWEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTlCQy9CRTJDRUZGMEIz QUExMUVEQUYzMTYyM0ZDNEY5QUUwMi9TcnZYTUJ6X2Y3U3N0cUJLRlBDamJNNkZZ UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NydlhNQnpfZjdTc3RxQktGUENqYk02RllSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE5QkMvQkUyQ0VGRjBCM0FBMTFFREFGMzE2MjNGQzRGOUFFMDIvNjg4QjZGMTgz NTU4MTFGMEFGNzk5MTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ32NIAwDQYJKoZIhvcNAQELBQADggEBAFGRH63qxZhD FJP7xxfOqRjHByQpZD0QWUpy/+yp1GBp0xNVNXNjxCfYHkiXZzOThoWBbwLiVpKB ktxgPHnDwOBRd9gutM1dnst0owjzTpMP7FBvXfaMG283Q6uQj7+/9Wr1yUfoisnO R6bjt40VyOxIiu7JtxsPuD1PQ2GL0PcWpV3tJjdk8TTVRPLNSNq2Z/FWWbJA3TrJ iV+sbgTSyph70fEFRsab4eGTS69dCZe0zWY5kJ6pD7hvOYH7Q1jvl6flyaC0bTq4 dBnrXn4dD9MaLKeOQ2GvhHzIODqt0kuo1qicoJ7vFANyYbWyhS1ZMOQJ8QFSyul/ qVw7a3sSmFw= -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:33 2025 by rpki-client